- notageek.it di Mirko Iodice - http://www.notageek.it -

Buffer Overflow Primer Video Series

Posted By Mirko On 2 settembre 2009 @ 8:53 In Segnalazioni | No Comments

bof1.png

Vivek Ramachandran [1] spiega gli stack overflow, ottimo materiale di studio per chi desidera approfondire i meccanismi fondamentali delle vulnerabilità software.
Per affrontare questa tematica sono necessarie delle conoscenze basilari di assembly e gestione della memoria, per questo motivo l'autore ha realizzato anche "Assembly Language Primer for Hackers Video Series [2]".

  1. Smashing The Stack [3]
    Sorgenti: demo.c [4]
  2. Writing Exit Shellcode [5]
  3. Executing Shellcode [6]
  4. Disassembling Execve [7]
  5. Shellcode for Execve [8]
    Sorgenti: ExecveShellCode.s [9] e ShellCode.c [10]
  6. Exploiting a Program [11]
    Sorgenti: ExploitMe.c [12]
  7. Exploiting a Program Demo [13]
    Sorgenti: HackYou.c [14] e ExploitMe.c [12]
  8. Return to Libc Theory [15]
    Sorgenti: ExploitMe2.c [16], Ret2Libc.c [17] e GetEnvironmentVarAddr.c [18]
  9. Return to Libc Demo [19]
    Sorgenti: ExploitMe2.c [16], Ret2Libc.c [17] e GetEnvironmentVarAddr.c [18]

Article printed from notageek.it di Mirko Iodice: http://www.notageek.it

URL to article: http://www.notageek.it/buffer-overflow-primer-video-series.html

URLs in this post:

[1] Vivek Ramachandran: http://www.vivekramachandran.com/

[2] Assembly Language Primer for Hackers Video Series: http://www.notageek.it/assembly-language-primer-for-hackers-video-series.html

[3] Smashing The Stack: http://www.securitytube.net/Buffer-Overflow-Primer-Part-1-%28Smashing-the-Stack%29-video.aspx

[4] demo.c: http://code.securitytube.net.s3.amazonaws.com/demo.c

[5] Writing Exit Shellcode: http://www.securitytube.net/Buffer-Overflow-Primer-Part-2-%28Writing-Exit-Shellcode%29-video.aspx

[6] Executing Shellcode: http://www.securitytube.net/Buffer-Overflow-Primer-Part-3-%28Executing-Shellcode%29-video.aspx

[7] Disassembling Execve: http://www.securitytube.net/Buffer-Overflow-Primer-Part-4-%28Disassembling-Execve%29-video.aspx

[8] Shellcode for Execve: http://www.securitytube.net/Buffer-Overflow-Primer-Part-5-%28Shellcode-for-Execve%29-video.aspx

[9] ExecveShellCode.s: http://code.securitytube.net/ExecveShellCode.s

[10] ShellCode.c: http://code.securitytube.net/Shellcode.c

[11] Exploiting a Program: http://www.securitytube.net/Buffer-Overflow-Primer-Part-6-%28Exploiting-a-Program%29-video.aspx

[12] ExploitMe.c: http://code.securitytube.net/ExploitMe.c

[13] Exploiting a Program Demo: http://www.securitytube.net/Buffer-Overflow-Primer-Part-7-%28Exploiting-a-Program-Demo%29-video.aspx

[14] HackYou.c: http://code.securitytube.net/HackYou.c

[15] Return to Libc Theory: http://www.securitytube.net/Buffer-Overflow-Primer-Part-8-%28Return-to-Libc-Theory%29-video.aspx

[16] ExploitMe2.c: http://code.securitytube.net/ExploitMe2.c

[17] Ret2Libc.c: http://code.securitytube.net/Ret2Libc.c

[18] GetEnvironmentVarAddr.c: http://code.securitytube.net.s3.amazonaws.com/GetEnvironmentVarAddr.c

[19] Return to Libc Demo: http://www.securitytube.net/Buffer-Overflow-Primer-Part-9-%28Return-to-Libc-Demo%29-video.aspx

Copyright © 2009 notageek.it. All rights reserved.